Principle 2:Defense in depth If one layer fails,hopefully another layer can succeed. No single point of failure. Why is bank more secure than convenience store? -Redundant security measures:security guard,bulletproof glass, electronically locked doors,vault protecting the rest and requiring the presence of two individuals who are rarely at the bank at the same time, security camera,... Well-known principle even beyond security -Have a series of defenses so that if an error isn't caught by one,it will probably be caught by another.(From Bruce MacLennan's Principles of Programming Languages. Securing the weakest link applies to nonoverlapping functions. Defense in depth applies to same function. -CSE825 5CSE825 5 Principle 2: Defense in depth If one layer fails, hopefully another layer can succeed. No single point of failure. Why is bank more secure than convenience store? ─ Redundant security measures: security guard, bulletproof glass, electronically locked doors, vault protecting the rest and requiring the presence of two individuals who are rarely at the bank at the same time, security camera,… Well-known principle even beyond security ─ Have a series of defenses so that if an error isn't caught by one, it will probably be caught by another. (From Bruce MacLennan's Principles of Programming Languages.) Securing the weakest link applies to nonoverlapping functions. Defense in depth applies to same function